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Amendments to the Claims 
Upon entry of this amendment, the following listing of claims will replace all prior 
versions and listings of claims in the pending application. 

IN THE CLAIMS 

Please amend claims 84, 87, 90, 92, and 95 as follows: 

1 . (Previously Presented) A method for establishing a secure communication channel 
between a client and an application server comprising the steps of: 

(a) receiving, at a web server, a request from a client to have an application program 
executed on an application server and to have output from said application program executing on 
said application server transmitted to said client; 

(b) generating, by a ticket service, a ticket having an identifier and a session key; 

(c) obtaining, by said web server, said ticket from said ticket service; 

(d) transmitting, by said web server, said ticket to said client over a secure 
communication channel; 

(e) transmitting, by said client, said identifier from said ticket to said application 

server; 

(f) obtaining, by said application server, a copy of said session key from said ticket 
service using said identifier; 

(g) establishing an application communication channel between said client and said 
application server; 

(h) executing, by said application server, said application program identified in said 
request; 
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(i) transmitting, by said application server, output of said application program over 
said application communication channel via a remote display protocol; and 

(j) encrypting said output communicated to said client over said application 
communication channel using said session key. 

2. (Canceled). 

3. (Canceled). 

4. (Previously Presented) The method of claim 1 wherein said ticket service resides on said 
web server. 

5. (Previously Presented) The method of claim 1 wherein step (f) further comprises 
transmitting, by said application server, said identifier to said web server over a server 
communication channel. 

6. (Previously Presented) The method of claim 5 further comprising receiving, by said 
application server, a response to transmitting said identifier to said web server, said response 
including said session key. 

7. (Previously Presented) The method of claim 5 further comprising validating, by said web 
server, said identifier. 

8. (Previously Presented) The method of claim 7 wherein said validating step further 
comprises confirming by said web server that said identifier is received by said web server 
within a predetermined time frame. 

9. (Original) The method of claim 1 wherein said session key is substantially equivalent to a 
null value. 

10. (Original) The method of claim 9 wherein said null value is a constant value. 
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11. (Previously Presented) The method of claim 5 further comprising establishing said server 
communication channel as a secure communication channel. 

12. (Previously Presented) A method for establishing a secure communication channel 
between a client and an application server comprising the steps of: 

(a) transmitting to a web server a request to have an application server execute an 
application program and transmit output from said application program executing on said 
application server; 

(b) establishing a secure web communication channel between a web browser 
executing on said client and said web server; 

(c) receiving a ticket having an identifier and a session key from said web server over 
said secure web communication channel; 

(d) establishing an application communication channel with said application server 
over said application communication channel; 

(e) transmitting said identifier from said ticket to said application server over an 
application communication channel to provide said application server with information for 
obtaining a copy of said session key; 

(f) receiving output of said application program, identified in said request, from said 
application server over said application communication channel via a remote display protocol; 
and 

(g) decrypting said output using said session key. 

13. (Previously Presented) A method for establishing a secure communication channel 
between a client and an application server comprising the steps of: 
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(a) receiving a request from a web server to execute an application program on behalf 
of a client and transmit to said client output from said application program executing on said 
application server; 

(b) receiving an identifier from said client; 

(c) obtaining from said web server a copy of a session key associated with said 
identifier; 

(d) establishing an application communication channel with said client; 

(e) executing said application program identified in said request; 

(f) transmitting output of said executing application program over said application 
communication channel via a remote display protocol; and 

(g) encrypting said output using said session key. 

14. (Canceled). 

15. (Previously Presented) The method of claim 13 wherein step (b) comprises receiving a 
nonce from said client. 

16. (Canceled). 

17. (Original) The method of claim 13 wherein said ticket is generated by a ticket service. 

18. (Original) The method of claim 13 wherein said identifier is an application server 
certificate. 

19. (Canceled). 

20. (Previously Presented) The method of claim 13 wherein step (b) further comprises 
receiving a password te from said client . 

21. (Canceled). 
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22. (Previously Presented) A communications system for establishing a secure 
communication channel between a client and an application server comprising: 

a ticket service generating a ticket associated with a client, said ticket having an identifier 
and a session key; 

a web server in communication with said ticket service; 

said web server receiving a request from said client to have an application program 
executed on an application server, obtaining said ticket from said ticket service, and transmitting 
said ticket to said client over a secure communication channel; 

said client transmitting said identifier from said ticket to said application server; 

said application server obtaining a copy of said session key from said ticket service using 
said identifier; 

said client and said application server establishing an application communication channel, 
said application server executing said application program identified in said request and 
transmitting output from said executing application program over said application 
communication channel via a remote display protocol; and 

said client and said application server encrypting communications using said session key. 

23. (Previously Presented) The system of claim 22 wherein said ticket service resides on said 
web server. 

24. (Previously Presented) The system of claim 22 further comprising said application server 
transmitting said identifier to said web server over a server communication channel. 

25. (Previously Presented) The system of claim 24 further comprising said application server 
requesting a copy of said session key in response to receiving said identifier from said client. 
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26. (Previously Presented) The system of claim 25 further comprising said web server 
validating said identifier. 

27. (Previously Presented) The system of claim 26 wherein said web server validates said 
identifier has not been previously received from said application server. 

28. (Previously Presented) The system of claim 26 wherein said web server validates said 
identifier when said identifier is received by said - web server within a predetermined time frame. 

29. (Previously Presented) The system of claim 27 further comprising said web server 
transmitting said session key to said application server over said server communication channel. 

30. (Previously Presented) The system of claim 24 wherein said server communication 
channel is a secure communication channel. 

3 1 . (Previously Presented) The system of claim 25 further comprising said web server 
transmitting additional information to said application server over said server communication 
channel. 

32. (Previously Presented) The system of claim 31 wherein said additional information 
comprises login information of a user of said client. 

33. (Previously Presented) The system of claim 32 wherein said additional information 
comprises a name of a software application executing on said application server. 

34. (Canceled). 

35. (Previously Presented) The system of claim 22 further comprising said client transmitting 
a password to said application server. 

36. (Previously Presented) The system of claim 22 further comprising said ticket service 
transmitting information corresponding to at least one of said client and a user operating said 
client to said application server. 
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37. (Previously Presented) A communications system for establishing a secure 
communication channel between a client and an application server comprising: 

a web browser on a client establishing a secure web communication channel with a web 
server, said web browser: transmitting to said web server a request to have an application server 
execute an application program and transmit to said client output of said application program 
executing on said application server; receiving a ticket associated with said client from said web 
server, said ticket having an identifier and a session key; and transmitting said identifier from 
said ticket to said application server; and 

an application client on said client establishing an application communication channel 
with said application server, said application client receiving output of said application program, 
identified in said request, executing on said application server, over said application 
communication channel via a remote display protocol and decrypting said output using said 
session key. 

38. (Previously Presented) The system of claim 37 wherein said web browser receives 
additional information from said web server over said secure web communication channel. 

39. (Previously Presented) The system of claim 38 wherein said additional information 
further comprises an address of said application server. 

40. (Previously Presented) The system of claim 37 wherein said application client transmits a 
password of a user operating said client to said application server. 

41 . (Previously Presented) The system of claim 37 wherein said identifier is an application 
server certificate. 

42. (Previously Presented) The system of claim 37 wherein said web browser uses secure 
socket layer technology to establish said secure web communication channel. 
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43. (Previously Presented) The system of claim 37 wherein said identifier is a nonce. 

44. (Previously Presented) The system of claim 37 wherein said session key is substantially 
equivalent to a null value. 

45. (Previously Presented) The system of claim 37 wherein said null value is a constant value. 

46. (Previously Presented) A communications system for establishing a secure 
communication channel between a client and an application server comprising: 

a ticket service generating a ticket associated with a client, said ticket having an identifier 
and a session key; 

a web server in communication with said ticket service, said web server receiving a 
request from said client to have an application program executed on said client's behalf and to 
have output of said application program transmitted to said client, said web server transmitting 
said ticket to said client over a secure web communication channel; 

an application server receiving said identifier from said ticket from said client, obtaining 
a copy of said session key from said web server, establishing an application communication 
channel with said client, executing said application program, transmitting output from said 
application program identified in said request to said client over said application communication 
channel via a remote display protocol, and encrypting said output using said session key. 

47. (Previously Presented) The system of claim 46 wherein said ticket service resides on said 
web server. 

48. (Previously Presented) The system of claim 46 wherein said application server obtains a 
copy of said session key from said web server in response to receiving said identifier from said 
client. 
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49. (Previously Presented) The system of claim 46 wherein said web server validates said 
identifier. 

50. (Previously Presented) The system of claim 49 wherein said web server validates said 
identifier has not been previously received from said application server. 

5 1 . (Previously Presented) The system of claim 49 wherein said web server validates said 
identifier is received by said web server within a predetermined time frame. 

52. (Previously Presented) The system of claim 49 wherein said web server transmits said 
session key to said application server over a server communication channel in response to 
receiving said identifier from said application server. 

53. (Previously Presented) The system of claim 52 wherein said server communication 
channel is a secure communication channel. 

54. (Previously Presented) The system of claim 52 wherein said web server transmits 
additional information to said application server over said server communication channel. 

55. (Previously Presented) The system of claim 54 wherein said additional ticket information 
further comprises login information of a user of said client. 

56. (Previously Presented) The system of claim 54 wherein said additional ticket information 
further comprises a name of a software application executing on said application server. 

57. (Previously Presented) The system of claim 49 wherein said client transmits a password 
of a user operating said client to said application server. 

58. (Previously Presented) The system of claim 49 wherein said ticket service transmits 
information corresponding to at least one of said client and a user operating said client to said 
application server. 
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59. (Previously Presented) The system of claim 49 wherein said identifier is an application 
server certificate. 

60. (Previously Presented) The system of claim 49 wherein said identifier is a nonce. 

61 . (Previously Presented) The system of claim 49 wherein said session key is substantially 
equivalent to a null value. 

62. (Previously Presented) The system of claim 49 wherein said null value is a constant 
value. 

63. (Previously Presented) The system of claim 49 wherein said secure web communication 
channel is established using secure socket layer technology. 

64. (Previously Presented) The method of claim 12 wherein said ticket is generated by a 
ticket service. 

65. (Previously Presented) The method of claim 64 wherein said ticket service resides on said 
web server. 

66. (Previously Presented) The method of claim 12 wherein said identifier is an application 
server certificate. 

67. (Previously Presented) The method of claim 12 wherein step (b) further comprises using 
secure socket layer technology to establish said secure web communication channel. 

68. (Previously Presented) The method of claim 12 wherein step (e) further comprises 
transmitting a password to said application server. 

69. (Previously Presented) The method of claim 12 wherein said session key is substantially 
equivalent to a null value. 

70. (Previously Presented) The method of claim 12 wherein said session key is substantially 
equivalent to a null value. 
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71 . (Previously Presented) The method of claim 13 wherein said ticket is generated by a 
ticket service. 

72. (Previously Presented) The method of claim 13 wherein said ticket service resides on said 
web server. 

73. (Previously Presented) The method of claim 13 wherein step (c) further comprises 
transmitting by said application server said identifier to said web server over a server 
communication channel. 

74. (Previously Presented) The method of claim 71 wherein said application server receives a 
response to transmitting said identifier to said web server, said response including said session 
key. 

75. (Previously Presented) The method of claim 71 wherein said web server validates said 
identifier. 

76. (Previously Presented) The method of claim 72 wherein said web server validates said 
identifier is received by said web server within a predetermined time frame. 

77. (Previously Presented) The method of claim 13 wherein said identifier is an application 
server certificate. 

78. (Previously Presented) The method of claim 13 wherein said session key is substantially 
equivalent to a null value. 

79. (Previously Presented) The method of claim 13 wherein said null value is a constant 
value. 

80. (Previously Presented) The method of claim 1 wherein said identifier is a nonce. 

81. (Previously Presented) The method of claim 1 wherein said identifier is an application 
server certificate. 
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82. (Previously Presented) The method of claim 1 wherein step (j) further comprises 
decrypting communications from said application server using said session key. 

83. (Previously Presented) The method of claim 1 wherein said remote display protocol is the 
Independent Computing Architecture protocol. 

84. (Currently Amended) The method of claim 1 wherein said remote display protocol is the 
Remote Desktop Display Protocol. 

85. (Previously Presented) The method of claim 12 wherein step (g) further comprises 
encrypting communications to said application server. 

86. (Previously Presented) The method of claim 12 wherein said remote display protocol is 
the Independent Computing Architecture protocol. 

87. (Currently Amended) The method of claim 12 wherein said remote display protocol is the 
Remote Desktop Display Protocol. 

88. (Previously Presented) The method of claim 13 wherein step (g) further comprises 
decrypting communications from said client. 

89. (Previously Presented) The method of claim 13 wherein said remote display protocol is 
the Independent Computing Architecture protocol. 

90. (Currently Amended) The method of claim 13 wherein said remote display protocol is the 
Remote Desktop Display protocol. 

91. (Previously Presented) The system of claim 37 wherein said remote display protocol is 
the Independent Computing Architecture protocol. 

92. (Currently Amended) The system of claim 37 wherein said remote display protocol is the 
Remote Desktop Display Protocol. 
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93. (Previously Presented) The system of claim 37 wherein said client encrypts 
communications to said application server using said session key. 

94. (Previously Presented) The system of claim 46 wherein said remote display protocol is 
the Independent Computing Architecture protocol. 

95. (Currently Amended) The system of claim 46 wherein said remote display protocol is the 
Remote Desktop Display Protocol. 

96. (Previously Presented) The system of claim 46 wherein said application server decrypts 
communications from said client using said session key. 
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